1
0
mirror of https://github.com/vimagick/dockerfiles.git synced 2024-12-14 11:23:02 +02:00
dockerfiles/strongswan/README.md
2016-06-28 17:28:49 +08:00

46 lines
990 B
Markdown

strongswan
==========
![](https://badge.imagelayers.io/vimagick/strongswan:latest.svg)
[strongSwan][1] is an Open Source IPsec-based VPN solution for Linux and other
UNIX based operating systems implementing both the IKEv1 and IKEv2 key exchange
protocols.
> :warning: This docker image only support IKEv2!
### docker-compose.yml
```yaml
strongswan:
image: vimagick/strongswan
ports:
- 500:500/udp
- 4500:4500/udp
volumes:
- /lib/modules:/lib/modules
- /etc/localtime:/etc/localtime
environment:
- VPN_DOMAIN=vpn.easypi.info
- VPN_SUBNET=10.20.30.0/24
- VPN_P12_PASSWORD=secret
cap_add:
- NET_ADMIN
privileged: yes
restart: always
```
### up and running
```bash
docker-compose up -d
docker cp strongswan_strongswan_1:/etc/ipsec.d/client.mobileconfig .
docker cp strongswan_strongswan_1:/etc/ipsec.d/client.cert.p12 .
docker-compose logs -f
```
- Mac/IOS: `client.mobileconfig`
- Android: `client.cert.p12`
[1]: https://strongswan.org/